Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
File: nmh1g4EMwAZO207-QFf1phpV5ws.mft (raw, json)
Hash identifier: gfS4f3/5HQJDRP5EEvCCB5CZNN2ekJQGo02O1EwnOPc=
Subject key identifier: 52:EB:35:4A:CE:25:EE:91:89:E5:94:D4:0C:5A:C2:00:8D:F4:96:8D
Authority key identifier: 9E:68:75:83:81:0C:C0:06:4E:DB:4E:FE:40:57:F5:A6:1A:55:E7:0B
Certificate issuer: /CN=9e687583810cc0064edb4efe4057f5a61a55e70b
Certificate serial: 01967868D517CE9A0A8AAAE12F30117F16FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nmh1g4EMwAZO207-QFf1phpV5ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
Manifest number: 03E5
Signing time: Sun 27 Apr 2025 18:00:58 +0000
Manifest this update: Sun 27 Apr 2025 18:00:58 +0000
Manifest next update: Mon 28 Apr 2025 18:00:58 +0000
Files and hashes: 1: nmh1g4EMwAZO207-QFf1phpV5ws.crl (hash: itBYuY9qncjF+9JZ10VRwj9ygcG5TXiSgGWbqEELE6M=)
2: qw-aF3yIkt-72WfpE7ETeHkvHMU.roa (hash: 3nZH1KB8lozx5AtSdJomkLmrFoDBz1VyVSOmQdHc1wE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/nmh1g4EMwAZO207-QFf1phpV5ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:d5:17:ce:9a:0a:8a:aa:e1:2f:30:11:7f:16:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e687583810cc0064edb4efe4057f5a61a55e70b
Validity
Not Before: Apr 27 18:00:58 2025 GMT
Not After : Apr 28 18:00:58 2025 GMT
Subject: CN=52eb354ace25ee9189e594d40c5ac2008df4968d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ec:19:d0:4f:67:f8:37:83:a3:80:46:82:7b:
51:15:eb:84:c0:f5:de:b2:ac:93:35:7f:fe:40:f7:
94:0f:7b:a0:20:fa:22:22:91:5d:6b:16:69:0a:61:
02:41:63:39:a3:b3:1e:05:f0:e9:da:80:42:50:1e:
5a:3b:7c:2d:8b:ca:82:91:f2:d5:92:33:60:82:f5:
ec:c0:b3:42:0c:a1:0f:00:7b:91:9c:96:cb:bb:75:
29:d8:ed:22:99:06:62:ec:a4:57:6a:75:30:6b:66:
ca:75:c9:22:b3:c0:ef:49:0a:09:95:a4:63:e1:eb:
f7:30:9b:59:62:63:dd:e7:7c:eb:40:33:b3:f5:cd:
6e:8b:22:93:64:76:a0:23:4b:7e:e2:d8:20:e6:10:
8c:d0:1e:58:36:ca:69:9e:b9:ea:73:4f:c7:b8:f4:
b8:a7:49:f9:22:da:b6:94:83:af:9b:78:09:7f:3f:
7b:8f:38:e4:3e:7a:90:0d:45:2c:a0:74:45:d6:d8:
c8:41:2a:ea:75:0d:b4:3c:dd:00:ef:4f:e2:ee:d6:
81:cf:33:90:0a:5e:a5:6e:b7:2c:c1:7d:08:31:de:
00:b1:2b:07:d0:98:96:c2:fd:0c:81:f4:af:e4:bd:
50:ca:f9:ce:b4:66:58:c6:ca:7f:ab:61:bd:b6:95:
31:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EB:35:4A:CE:25:EE:91:89:E5:94:D4:0C:5A:C2:00:8D:F4:96:8D
X509v3 Authority Key Identifier:
keyid:9E:68:75:83:81:0C:C0:06:4E:DB:4E:FE:40:57:F5:A6:1A:55:E7:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nmh1g4EMwAZO207-QFf1phpV5ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:06:26:d3:eb:3a:ae:f8:44:32:4e:b5:fa:8b:09:92:00:d6:
c5:3a:0d:53:99:fb:48:aa:1b:85:28:e7:50:31:5a:e4:a9:8c:
7c:d7:ec:b1:e3:24:5f:81:8c:d5:84:30:e9:a7:e6:42:ee:56:
56:a6:97:50:23:08:c9:93:f6:54:49:e5:1d:d3:97:0e:f9:22:
8b:9f:2b:6b:f9:9c:ee:6a:2e:ed:45:02:19:d7:d1:20:e5:a0:
c8:dc:2b:85:bd:e1:50:05:23:ca:81:eb:42:a5:3f:b1:58:3f:
f4:b5:a9:77:75:3c:ea:3b:89:34:8c:87:6e:61:46:bf:32:28:
41:ce:34:6d:6a:ed:50:f1:eb:c9:70:da:0b:b4:61:c5:48:21:
8b:ee:25:be:10:1d:a4:08:33:23:80:4a:9a:e1:ac:08:15:7c:
d2:8e:f7:f9:9a:f2:85:44:eb:e4:f1:66:05:3d:ce:e5:61:cf:
fa:96:0e:1a:6f:cf:fb:1a:a3:57:33:8b:98:60:7c:13:55:50:
85:f7:f3:ba:ef:72:4b:83:08:ed:f6:df:8b:00:55:61:8d:bd:
2b:e3:00:51:c1:69:91:74:6b:d7:62:bc:c5:3f:b4:53:8a:2f:
9c:9f:68:84:7c:42:17:a9:ca:b7:2c:fa:5e:f4:3a:21:da:e2:
8a:c1:6a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:56:15 2025 by rpki-client